[0001] 



NETWORK MEDIA ACCESS ARCHITECTURE 
AND METHODS FOR SECURE STORAGE 



[0002] Inventors: 

Due Pham 
Nam Pham 
Pu Paul Zhang 
Tien Le Nguyen 

[0003] Cross-Reference to Related Applications 

[0004] The present application is related to the following Applications, 

assigned to the Assignee of the present Application: 

[0005] 1) SCALABLE NETWORK MEDIA ACCESS CONTROLLER AND 
METHODS, by Pham et al. and assigned to the Assignee of the present 
Application. 

[0006] Background of the Invention 

[0007] Field of the Invention: 

[0008] The present invention is generally related to providing data 

security for distributed data storage systems and, in particular, to an architecture 
and methods of providing comprehensive security for network attached storage 
systems. 
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[0009] Description of the Related Art: 

[001 0] The need and value of distributed data storage, particularly 

in connection with the access and protection of enterprise data, are becoming 
widely accepted. Distributed data storage can be flexibly architected to enable 
global access to data, live-data redundancy, often involving geographically 
distributed live-data stores, and remote backup, including hot-backup, of critical 
data. Even in application to the basic need for off-line mass data-store backups, 
the value of using a remote network-attached storage system is evident over the 
tedious performance of periodic, on-site data dumps with manual shipment of 
physical backup media to remote storage. Thus, depending on the particular 
p priorities of an enterprise, different configurations of network-attached storage 

p can be used to implement a beneficial distributed data storage system. 
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[00 11 ] The easy implementation of dedicated storage area network (SAN) 

intranets and the broad availability of the public Internet infrastructure has greatly 
facilitated the broad use of network attached storage. A shared SAN is often used 
to centralize the management and maintenance of storage resources within 
organizations of various sizes. Third-party storage service providers (SSPs) are 
also available to provide remote SAN hosting. 

[0012] A variety of network capable devices, from conventional network 

server systems to dedicated storage appliances, are available as the architectural 
building blocks of network-attached storage systems. Many of these devices 
implement support for the iSCSI protocol (IETF Internet Draft draft-ietf-ips-iSCSI- 
08.txt; www.ietf.org) to obtain reliable storage data transport over a conventional 
TCP/IP network. The iSCSI protocol itself encapsulates an I/O storage command 
and data structure that conforms to the small computer system interface (SCSI) 
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architecture model (SAM2). Whereas SAM2 defines a local, direct attach client- 
server data transport protocol, the iSCSI protocol encapsulation of SAM2 adds 
global network naming support for initiator-target communication between 
network connected data source (initiator) and terminal storage (target) devices. 
The iSCSI protocol thus combines the benefits of IP remote transport and the 
reliable quality of service (QoS) provided by the TCP protocol with storage 
transaction session control under the SCSI protocol. Various similar protocols 
exist, such as Fibre Channel Over TCP/IP (FCIP; IETF Internet Draft 
draft-ietf-ips-fcovertcpip-06.txt) to define storage transport over particular network 
media and using other storage architecture models. 

[0013] There are, however, a number of practical and architectural 
problems inherent in conventional distributed data storage systems. Data security 
and control over the security management function are typically recognized as the 
most significant problems. The data security problem involves issues of transport 
security, access security, and storage security. Transport security concerns 
ensuring that data is delivered between an initiator and target without 
eavesdropping. The iSCSI protocol anticipates the complementary use of 
conventional transport security protocols, such as IPsec (Security Architecture for 
the Internet Protocol; RFC 2401; www.ietf.org), to provide secure encryption for 
data in transport. The IPsec supported encryption, however, covers only the 
transport phase with the result of providing clear text data at the transport end. 
[0014] Both the iSCSI and the IPsec protocols can handle at least some 
access security issues through host authentication. IPsec and iSCSI perform initial 
host authentication transactions based on either a public key signature exchange 
or preshared keys. Under IPsec, host authentication provides assurance that 
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session level access is between verified and thus jointly known initiator and target 
systems. Under iSCSI, the optional authentication negotiation can extend to the 
application level to provide secure access down to a named iSCSI target. Host 
authentication is established under the iSCSI protocol through the iSCSI login 
command exchanges and maintained through the utilization of a digital digest 
exchanged with the iSCSI packets between the initiator and target devices. 
[0015] US Patent 6,263,445 provides an alternative and proprietary 
methodology for providing host authentication. Like the IPsec protocol, host 
authentication is initially negotiated between a host system and network storage 
system based on a public key exchange to verify identities. The '445 patent, 
however, contemplates network data transfers based only on the IP protocol. To 
add features of protocol reliability and host authentication, conventionally 
provided by use of the TCP protocol, each host data request and response 
exchanged throughout a data-transfer session are marked with sequence 
numbers based on a preestablished ordering algorithm. 

[0016] The IPsec, iSCSI, and proprietary protocols such as the one 
presented by the '445 patent do not address storage security. Conventionally, 
data as delivered to a destination site for storage is protected there only by the 
security practices of the destination site. Typically, destination security is 
implemented by physical site security and locally administered encryption of the 
data. Such security practices, while potentially adequate, are neither guaranteed 
nor nominally within the control of the source data owner. 
[001 7] Where stored data represents a substantial financial or operational 
value, a destination site security breach is often considered an unacceptable risk 
by the source data owner. In such cases, conventional client- based encryption 
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systems are often used. Client encryption, either application or filesystem based, 
ensures that client data is encrypted local to the client prior to network transport. 
Thus, clear text client data can only be recovered by a client with access to a 
corresponding encryption key, which is entirely controlled by the source data 
owner. US Patent 5,931,947 describes such a filesystem-based encryption 
system, where files are stored remotely as encrypted data objects. An encrypted 
object is created on the client filesystem whenever a file is stored to the distributed 
filesystem. The encryption is based on per-client allocated security keys, thereby 
ensuring that encrypted content can only be accessed from the original encrypting 
client. Consequently, any failure of destination site security over stored data does 
not compromise the security of the underlying data. The data can be physically 
lost, but not, as a practical matter, accessed due to the client encryption of the 
data. The client can protect against physically lost data by mirroring storage or 
otherwise keeping redundant copies. 

[001 8] While the different aspects of data security can be addressed at least 
by some degree by selective use of protocols and client-based encryption, the 
provided solutions create additional security management problems. 
Management of access rights and privileges to different encryption keys is 
necessary to maintain the integrity of data in shared storage and ensure the 
security and privacy of the data. Such management and control requirements, 
which must extend over many different clients with many different data access 
requirements relative to potentially multiple distributed storage systems, represents 
a very complex and management intensive task. 

[0019] The IPsec and iSCSI protocols, as formally defined, provide no 
significant practical support for access management control to storage targets or 
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specific resources within the targets. Other protocols, such as that described in 
the'445 patent, and network storage server operating systems implement various 
systems of access request filtering on the storage server. Each received request 
is examined by the storage server against a persistent access rights table that is 
local to the storage server. The integrity of the access rights table is therefore 
subject to the limitations of the destination site security. The access rights table is 
therefore outside of the assured control of the data content owner, particularly 
where the distributed storage system is remotely hosted and managed by a third- 
party SSP. 

[0020] Similarly, application and filesystem-based storage security is highly 

problematic to manage. Client-based encryption systems are, by their nature, 
distributed. There is no centralized key management system except as may be 
implemented manually, which is highly susceptible to procedural failures. As is 
clear from the '947 patent, the strength of data protection afforded by encryption 
is matched by the potential of data loss. In order to change or revoke access by 
any client to objects stored by the distributed filesystem, the objects must be 
successfully read and then re-encrypted with different keys. Any client failure 
leading to the loss of the client key results in a loss of the client stored data. While 
an encryption algorithm accommodating a master key might be used, such 
algorithms are inherently less secure and thereby would compromise the security 
of the stored data. Even if a master key algorithm is used, there remains the 
security control problem of managing multiple master keys. 
[0021] Consequently, there is a need for a centrally manageable system 

capable of providing comprehensive security for network attached storage 
systems. 
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[0022] Summary of the Invention 

[0023] Thus, a general purpose of the present invention is to provide a 
network media access controller that implements robust, centrally manageable 
storage security. 

[0024] This is achieved in the present invention by providing a network 
media access controller as a centralized control point for managing secure data 
storage in a network-attached data storage subsystem. The network media access 
controller includes first and second network interfaces. The first network interface 
is coupleable through a first network connection to a network-attached data 
storage subsystem including a storage device. The network-attached data storage 
subsystem is responsive to a data storage command to store first data to the 
storage device. The second network interface is coupleable through a second 
network connection to a client computer system. The client computer system 
selectively provides the data storage command with respect to second data. A 
network data processor is coupled to the first network interface to provide the data 
storage command and first data and to the second network interface to receive 
the data storage command and second data. The network data processor 
including an encryptor coupled to selectively encrypt the second data to provide 
the first data based on an encryption key corresponding to the storage device. 
[0025] An advantage of the present invention is that the network media 
access controller provides client initiator and target device independent storage 
security. The application of storage security as well as all management of storage 
security is effectively and efficiently removed to a centralized control point 
provided by the network media access controller. 
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[0026] Another advantage of the present invention is that storage security 
is implemented through media encryption of the network data streams routed 
through the network media access controller. Through data encryption at the 
media level, the implemented storage security is independent of the filesystem 
configuration, operating system, and source data application. 
[0027] A further advantage of the present invention is that the network 
media access controller can be architecturally implemented fully within the local 
security domain. The network media access controller can be configured as a 
network gateway or proxy device within the local security domain and operated 
transparently for the benefit of the source data owners relative to external 
network-attached storage. All storage media accessed through the network 
media access controller is fully round-trip encrypted, yet all encryption keys and 
security parameters are centrally managed within the local security zone separate 
from the clients and external network-attached storage. 

[0028] Still another advantage of the present invention is that the network 

media access controller can be operated as a storage firewall through utilization 
of multiple data transfer and data access control policies implemented in the 
operation of the network media access controller. Transport, access, and media 
policies can be operationally implemented to filter data transport, manage key 
usage, and map media resources to define the presentation and use of storage 
accessible through the network media access controller. 

[0029] Yet another advantage of the present invention is that the network 
media access controller supports scalable, wire-speed media-level encryption to 
enable storage security for high-throughput network-attached storage systems. 
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The encryption function can be implemented using public or private key 
encryption algorithms and can be applied to any transport storage protocol. 

[0030] Brief Description of the Drawings 

[0031 ] These and other advantages and features of the present invention 
will become better understood upon consideration of the following detailed 
description of the invention when considered in connection with the accompanying 
drawings, in which like reference numerals designate like parts throughout the 
figures thereof, and wherein: 

[0032] Figure 1 provides a system block diagram illustrating use of a 
network media access controller in accordance with the present invention; 
[0033] Figure 2 illustrates multiple alternate architectural uses of a network 

media access controller in accordance with the present invention; 
[0034] Figure 3 is simplified block diagram of the system architecture of a 
network media access controller constructed in accordance with a preferred 
embodiment of the present invention; 

[0035] Figure 4 is simplified block diagram of a control processor used in 

a network media access controller constructed in accordance with a preferred 
embodiment of the present invention; 

[0036] Figure 5 is simplified block diagram of a network interface 
processor used in a network media access controller constructed in accordance 
with a preferred embodiment of the present invention; 

[0037] Figure 6 is simplified block diagram of a first crypto processor used 

in a network media access controller constructed in accordance with a preferred 
embodiment of the present invention; 
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[0038] Figure 7 is simplified block diagram of a second crypto processor 

used in a network media access controller constructed in accordance with a 
preferred embodiment of the present invention; 

[0039] Figure 8 illustrates the structure of at network data packet presenting 
media-level data for processing in accordance with a preferred embodiment of 
the present invention; 

[0040] Figure 9 illustrates an exemplary virtual initiator to target mapping 

provided by through a media policy control file in accordance with a preferred 
embodiment of the present invention; 

[0041] Figure 10 is a control and data flow diagram illustrating the 

processing of an iSCSI protocol network data packet in accordance with a 
preferred embodiment of the present invention; 

[0042] Figure 1 1 is a control and data flow diagram illustrating the 

preferred implementation of media-level encryption in accordance with the 
present invention; 

[0043] Figure 1 2 provides a transition state diagram detailing the storage 

system connection phase processing performed in accordance with a preferred 
embodiment of the present invention; 

[0044] Figure 1 3 provides a transition state diagram detailing the storage 

system media discovery phase processing performed in accordance with a 
preferred embodiment of the present invention; 

[0045] Figure 14 provides a transition state diagram detailing a first form 

of storage system media-level data read processing performed in accordance with 
a preferred embodiment of the present invention; 
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[0046] Figure 15 provides a transition state diagram detailing a second 
form of storage system media-level data read processing performed in 
accordance with a preferred embodiment of the present invention; 
[0047] Figure 1 6 provides a transition state diagram detailing a first form 
of storage system media-level data write processing performed in accordance with 
a preferred embodiment of the present invention; 

[0048] Figure 17 provides a transition state diagram detailing a second 
form of storage system media-level data write processing performed in 
accordance with a preferred embodiment of the present invention; 
[0049] Figure 1 8 provides a transition state diagram detailing the handing 
of other system media commands as performed in accordance with a preferred 
embodiment of the present invention; and 

[0050] Figures 1 9 and 20 provides a transition state diagram detailing the 
closing of storage system media-level data sessions and TCP connections in 
accordance with a preferred embodiment of the present invention. 

[0051] Detailed Description of the Invention 

[0052] The present invention provides storage security over data stored in 
network-attached storage systems that are at least logically remote relative to 
client computer systems that are the nominal owners of the remotely stored data. 
While the network-attached storage systems contemplated for use in connection 
with the preferred embodiments of the present invention utilize the iSCSI protocol 
as the basis for network storage data transfers, the present invention is not limited 
to use of the iSCSI protocol. Rather, the present invention is equally applicable to 
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any network protocol, communicated over any media, that transports a data 
storage protocol, of which the SCSI protocol is one example. The present 
invention is equally applicable to fibre channel over IP (FCIP) and storage over IP 
(SolP) protocols and is thus generally to any other combination of storage and 
transport protocols. It is therefore to be understood that the following description 
is of a preferred iSCSI-based embodiment of the present invention, but is not to 
be construed as limited to use of the iSCSI protocol. 

[0053] A generic application and embodiment 1 0 of the present invention 
is shown in Figure 1 . A secure network zone 1 2 includes a network media access 
controller! 4 and any number of different clients 16^ N that are nominal source 
data owners that operate as at least logically separate initiator iSCSI nodes. The 
network media access controller! 4 is preferably configured to appear as a target 
iSCSI network entity to the clients 1 6 1 „ N . Preferably operating in an iSCSI network 
proxy mode, the network media access controller 14 acts as an independent 
initiator of equivalent iSCSI requests to a network-attached storage system 18. 
The logically external storage system 1 8 includes one or more iSCSI target nodes 
20 that provides persistent data storage. Alternately, the network media access 
controller 14 can operate as a network gateway device that operates to pass 
network data packets between the clients 16^ and iSCSI targets 20. 
[0054] The primary function of the network media access controller 14 is 

to provide storage security for client data stored by the iSCSI targets 20. The 
network media access controller 1 4 preferably operates to encrypt the media-level 
data contained in selected iSCSI network data packets directed to any of the iSCSI 
targets 20 and correspondingly decrypt the media-level data in returned iSCSI 
data packets. In accordance with the present invention, media-level data is the 
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SCSI data payload within an iSCSI network data packet. The presence of such 
media-level data is preferably identified by examination of the SCSI command or 
command response embedded within a corresponding iSCSI network data packet. 
In order to track the command/data association and recognize the various read 
and write command sequences, the network media access controller 1 4 preferably 
implements a SCSI state machine to track the command/data sequences. The 
state machine is preferably also used to acquire device geometry and target 
configuration information from the different iSCSI targets 20 by monitoring non- 
data transfer SCSI command and response exchanges between the external iSCSI 
initiators and targets. Alternately, pre-defined device geometry and target 
configuration information can be manually provided to supplement or override 
potentially insufficient or incorrect information that might be provided from the 
iSCSI targets. 

[0055] In the preferred embodiments of the present invention, the network 

media access controller 14 implements a number of additional functions related 
to media access management. Preferably, a storage firewall function can be 
configured through the specification of a transport policy 22 presented as a data 
file to the network media access controller 14. In the preferred embodiments of 
the present invention, the contents of this data file, representing the parameters 
of the transport policy 22, are entered through a command interface supported 
by the network media access controller 14. The transport policy 22 preferably 
specifies various filtering rules that determine which network data packets will be 
selectively accepted for transport through the network media access controller 14. 
The filter rules can define allowable source and destination IP addresses, address 
ranges and TCP ports as well as protocols and transport directions. The filter 
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rules also preferably define authentication and operation specific constraint rules. 
In the preferred embodiments of the present invention, the authentication rules 
define whether media access requires user, client, or a combination of user and 
client authentication. User authentication requires the iSCSI user name and 
password associated with a connection match a rule provided name and 
password. Client authentication requires the client computer IP address match a 
rule provided IP address or address range. A TCP port match may also be 
required. These authentication rules may be specified on a per LUN or volume 
basis. 

[0056] Preferably, the authentication rules can be specified against specific 
SCSI command operations. In particular, different authentication rules may define 
different users or user groups permitted to read media data, write media data, 
format a volume, or issue a mode select. Other SCSI command operations can 
also be specified. This administratively permits, for example, defined users to 
read and write data to a volume, but prevent the users from formatting the 
volume or LUN, or changing the mode of the LUN. Conversely, defined 
administrative users can be permitted through the authentication rules to format 
LUNs and copy volumes, but not read or write media data. The authentication 
rules thus support a fine-grained transport and media access control mechanism 
that effectively implements a storage firewall function. 

[0057] An access policy 24, also presented as a data file to the network 
media access controller 14, preferably specifies the encryption keys and related 
parameters applicable to the data storage resources of the iSCSI targets 20. 
Preferably, encryption keys are allocated on a per volume basis, where a volume 
ultimately corresponds to a unique portion or partition of a storage device LUN 
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that can be resolved from the iSCSI target name as provided in the iSCSI header 
portion of a network data packet. In accordance with the preferred embodiments 
of the present invention, the volume association of encryption keys corresponds 
to the iSCSI target names terminated by the network media access controller 14. 
[0058] Virtual, as well as real, media allocations are supported through the 
proxy operation of the network media access controller 14 based on media 
allocation mappings provided by a media map policy 26 data file. In proxy 
operation, the network media access controller 14 terminates iSCSI sessions 
relative to the clients 16 1-N and separately initiates iSCSI sessions with the real 
iSCSI targets 20. These internal iSCSI target names supported by the network 
media access controller 14, representing virtualized iSCSI targets, are therefore 
fully distinct from the external iSCSI names of the iSCSI targets 20. 
[0059] The media policy 26 preferably includes map lists of the internal 
iSCSI target names recognized by the network media access controller 1 4 and the 
external iSCSI target names accessible by the network media access controller 14. 
An initiator-side to target-side mapping, establishing a correspondence between 
the virtualized internal and real external iSCSI target names, is also provided by 
the media policy 26. Although this initiator to target mapping is nominally 
provided statically by the media policy 26, a basic mapping can also be created 
dynamically by an automated process of discovering the available external iSCSI 
target 20 names, such as through inquiry operations directed to the iSCSI target 
20 entity, and then permuting the names relative to the network media access 
controller 14 to establish a supported set of internal iSCSI target names. 
[0060] In the simplest configuration, a one-to-one or real correspondence 

is defined by the initiator to target mapping of the media policy 26. This real 
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media allocation nominally supported by the media policy 26 can be extended, 
in accordance with the present invention, to further virtualize the volumes of the 
iSCSI targets 20 at least with respect to the clients 16 UN . Multiple modes of 
virtualization are possible. In one mode, the media policy 26 may define multiple 
virtual volumes within anyone real volume by mapping different LBA offset ranges 
within a real LUN to different virtual iSCSI targets of corresponding size. These 
resulting virtual LUNs then appear as distinct iSCSI targets to the clients 16 1-N . 
Each virtual iSCSI target can then be specified as having a corresponding unique 
encryption key by corresponding allocation of keys under the access policy 24. 
This permits keys to be allocated to whatever level of granularity may be deemed 
appropriate in managing the security issues associated with the data. 
[0061] Another media allocation mode supports remapping of an iSCSI 
target name, as specified by an iSCSI initiator, to a completely different iSCSI 
target name. This permits the data contents of one volume to be moved from one 
LUN to another, perhaps on an entirely different SCSI storage device within an 
entirely different iSCSI target entity. This real movement of the target data is 
transparent to the clients 16^, as the iSCSI target named used by the iSCSI 
initiators can be maintained unchanged. The access policy 24, by associating the 
keys with the iSCSI target names supported by the network media access 
controller 14, can also be maintained unchanged. Any change in the external 
iSCSI target 20 name need only be reflected in an updated media policy 26. 
[0062] A combination of the virtualization and remapping media allocation 

modes can also be supported by the media policy 26. Virtual volumes can be 
equally remapped through the media policy 26 to other real and virtual volumes. 
Thus, the movement of data from one virtual LUN to any other real or virtual LUN, 
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as may be needed in maintenance of the iSCSI target 20 storage space, can be 
managed transparently to the clients 16^. 

[0063] In accordance with the present invention, the transport, access, and 

media policies 22, 24, 26 are managed through a centralized policy authority 
performed by an administrative server 28. Preferably, a GUI-based application 
is executed by the administrative server 28 to prepare and pass the transport, 
access, and media policies 22, 24, 26 to the network media access controller 1 4. 
By establishing the administrative server 28 as the policy authority over at least the 
access policy for encryption keys, a three-tier security system, consisting of client, 
media, and storage site security, is established. The client security tier covers the 
management of user access and configuration of the host systems associated with 
the client nodes 16 q . N . The storage site tier covers the security of the physical 
storage resources, including the ongoing management and maintenance of the 
various storage devices that make up the local network-attached storage system 
1 8. The media access tier covers at least storage security over the local network- 
attached storage system 1 8. The media access tier also preferably includes the 
management and effective configuration of the virtual and real storage resources 
as well as firewall filtering of connections between the clients 16^ and the 
network-attached storage system 1 8. While the administrative server 28 may be 
physically implemented as one of the clients 1 6 1-N , the present invention enables 
the policy authority function to be centrally performed entirely separate from the 
clients 1 6 1-N . Further, the authority function can be performed almost entirely 
separate from the iSCSI targets 20, requiring only to be provided with any iSCSI 
target name changes made in the external maintenance of the iSCSI target 20 
storage space. 
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[0064] The network media access controller 1 4 of the present invention can 
be used in combination with other network devices. In particular, the present 
invention contemplates use of IPsec encryption gateways 30, 32 with the network 
media access controller 14 to provide transport security. The IPsec encryption 
gateways 30, 32 may be of conventional design and implementation, though 
preferably are constructed and operate in accordance with the IPsec encryption 
gateways 30, 32 described in co-pending applications SCALABLE NETWORK 
GATEWAY PROCESSOR ARCHITECTURE, Serial Number 09/976,322, by Pham 
et al., and LOAD BALANCED SCALABLE NETWORK GATEWAY PROCESSOR 
ARCHITECTURE, Serial Number 09/976,229, by Pham et aL, both of which are 
assigned to the Assignee of the present Application and are expressly 
incorporated herein by reference. 

[0065] The network configuration 40 shown in Figure 2 illustrate the 
architectural flexibility of the present invention in providing storage security. 
Clients can connect through a local network media access controller 14, the 
Internet 42, and a router 44 to an IP SAN 46 to any number of fixed media 48, 
50 and removable media 52 iSCSI target nodes. 

[0066] Alternately, clients can access the IP SAN 46 by remotely connecting 
via virtual private networks (VPN) to a server 54 that provides local connectivity 
through a layer-4 switch 56 to an array of network media access controllers 14^. 
The media-level encrypted iSCSI traffic is then routed through the layer-4 switch 
56 to the IP SAN 46 either directly or through the Internet 42 and router 44, 
depending on the physical location of the IP SAN 46. In accordance with the 
present invention, the array of network media access controllers 14^ is preferably 
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managed by a single central policy management server 58 in place of separate 
administrative servers 28. 

[0067] A wire-speed capable, scalable network media access controller 60, 
representing a preferred architectural embodiment of the network media access 
controller 14 of the present invention, is shown in Figure 3. The network media 
access controller 60 preferably supports a separate physical interfaces to an 
initiator connected LAN 62 and a target connected LAN 64. Where the network 
media access controller operates as a network proxy device, the initiator and 
target LANs 62, 64 may be the same or different physical LANs. The initiator LAN 
62 preferably connects an initiator interface processor 66, capable of performing 
high-speed network data packet processing, to a high-speed packet switch fabric 
68. A target interface processor 70 similarly connects the target LAN 64 to the 
switch fabric 68. 

[0068] The initiator and target interface processors 66, 70 connect through 

the switch fabric 68 to a scalable array of crypto processors 72 ? „ N , which, in 
aggregate, perform the core control and compute intensive functions of the 
network media access controller 60. For the preferred embodiments of the 
present invention, the initiator interface processor 66 logically allocates TCP 
connections from external iSCSI initiators to the array of crypto processors 72 1-N 
based on a connection load-balancing algorithm. In proxy operation, the crypto 
processors 72 VN preferably terminate these TCP connections and independently 
initiate corresponding connections with external target iSCSI nodes connected 
through the target interface processor 70. In operation, network data packets are 
routed through a corresponding crypto processor 72 1-N based on the TCP 
connection identification contained within each network data packet. The crypto 



Attorney Docket No.: AESN3005 

gbr/aesn/3005.000.application.wpd 



11/30/2001 



co- 
processors 72l N selectively process and rewrite each network data packet to 
implement proxy routing, perform media-level processing of the embedded media 
payload data, and to update other data packets fields consistent with the 
processing of the media-level payload data. The processing performed by the 
crypto processors 72 1 „ N is bidirectional, essentially dependent on the direction of 
the network data packet based media-level data transfer through the network 
media access controller 60. 

[0069] A control processor 74 connects to the switch fabric 68 to provide 
management and configuration functions in support of the internal operation of 
the network media access controller 60. Global management and configuration 
data defining the implemented policies, network connections, and storage 
resources maintained accessible through the network media access controller 60 
are stored by the control processor 74. While the initial data is derived from the 
policy files 22, 24, 26, the data is dynamically updated from the initiator and 
target interface processors 66, 70 and the individual crypto processors 72^. 
Portions of the data are provided on query back to the initiator and target 
interface processors 66, 70 and the individual crypto processors 72 1 _ N . These 
updates and queries are preferably performed as logically out-of-band data 
transfers relative to the network data packet transfers between the initiator and 
target interface processors 66, 70 and the individual crypto processors 72^ N . 
[0070] The control processor 74 also provides a control interface to the 
administrative server 28. Initial and updated control policy data 22, 24, 26 is 
provided to the control processor 74 and dynamic configuration, status and 
statistical performance data are returned through the control interface. In the 
preferred embodiments of the present invention, this control interface is accessible 



Attorney Docket No.: AESN3005 

gbr/aesn/3005.000.application.wpd 



11/30/2001 



-21 - 

typically by way of the initiator LAN 62 using an IP address uniquely allocated to 
the network media access controller 60. Alternately, a separate LAN interface 76 
can be implemented to provide an effectively private control access path between 
the administrative server 28 and network media access controller 60. 
[0071 ] In the preferred embodiments of the present invention, the network 
media access controller 60 utilizes IBM Packet Routing Switches PRS28.4G (IBM 
Part Number IBM3221L0572), commercially available from IBM Corporation, 
Armonk, New York, as the basis for the switch fabric 68. Pairs of the Packet 
Routing Switches are connected in a speed-expansion configuration to implement 
sixteen input and sixteen output ports and provide non-blocking, fixed-length data 
packet transfers at a rate in excesses of 3.5 Gbps for individual port connections 
and with an aggregate bandwidth in excess of 56 Gbps. 
[0072] For in-band network data packet transfers, the initiator and target 

interface processors 66, 70 connect to the switch fabric 68 through multiple ports 
of the fabric 68 to establish parallel packet data transfer paths though the switch 
fabric 68 and, thus, to divide down, as necessary, the bandwidth rate of the 
connected networks 62, 64 to match the individual port connection bandwidth of 
the switch fabric 68. Thus, for 4 Gbps network 62, 64 connections, the initiator 
and target interface processors 66, 70 each implements at least three port input 
and output connections to the switch fabric 68. For the preferred embodiment of 
the network media processor 60, which supports one Gigabit Ethernet 
connections, the initiator and target interface processors 68, 70 each require just 
single input and output port connections to the switch fabric 68 to fully support the 
bandwidth requirements of the in-band network data traffic. 
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[0073] Each of the crypto processors 72 7 _ N preferably implements single 
input and output port connection to the switch fabric 68. Due to the core control 
and compute intensive functions implemented by the crypto processors 72 1-N , the 
throughput capabilities of the crypto processors 72 1-N are expected to be less if not 
substantially less than the bandwidth capabilities of a single switch fabric port 
connection. 

[0074] The control processor 74 preferably also requires just single input 
and output port connections to the switch fabric 68. Like the crypto processors 
72 n _ N/ the management and configuration functions performed by the control 
processor 74 are not anticipated to exceed the bandwidth capabilities of single 
bidirectional pair of switch fabric port connections. 

[0075] Alternately, a lower aggregate throughput switch fabric 68 can be 
cost effectively implemented using a Gigabit Ethernet switch device, such as the 
BCM5680, commercially available from Broadcom Corporation, Irvine, 
California. Single gigabit connections through an eight-port Gigabit Ethernet 
switch-based fabric 68 can directly support an array of up to five crypto 
processors 72 1-N to fully support one Gigabit wire-speed iSCSI data transfers over 
the connected LANs 62, 64. 

[0076] As generally shown in Figure 4, the control processor 74 is 
preferably implemented using a conventional embedded processor design and 
executes an embedded version of the Linux® network operating system. An ASIC 
switch interface 82, coupled through a conventional network interface core 83, 
enables a conventional embedded microprocessor 84, such as an Intel® 
Pentium®-lll series processor, to communicate out-of-band data packets through 
the switch fabric 68 with the initiator and target interface processors 66, 70 and 
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crypto processors 72 UN . Alternately, an available direct interface port preferably 
on the initiator interface processor 66 can be used to host bidirectional 
communications between the control processor 74 and the initiator LAN 62 and 
any other processor connected to the switch fabric 68. 

[0077] The embedded operating system is executed from a program 
memory 86, which is also used to store management and configuration 
information in data tables 88. Table 1 summarizes the management and 
configuration data held in the data tables 88. 



[0078] 



Table 1 

Management and Confiquration Data 


1. 


IP filter rules: defining permitted combinations of IP addresses, port 
numbers, and protocols for transport through the network media access 
controller; initially defined through the Transport policy; dynamically 
updateable by the administration server. 


2. 


Initiator to target volume mappings: establishing the logical association 
of targets terminated by the network media access controller and the 
real targets accessible through the network media access controller; 
mapping preferably includes the full iSCSI names of the logical and 
real targets sufficient to support proxy operation; real target map 
entries preferably include data defining volume compression status and 
control parameters and volume encryption-type and control 
parameters; initially defined by the Media policy; dynamically 
updateable by the administrative server. 


3. 


Encryption keys assignments: to uniquely defined volumes, preferably 
corresponding to the initiator map of the target volumes terminated by 
the network media access controller; initially defined by the Access 
policy; dynamically updateable by the administrative server. 
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Table 1 

Manaaement and Configuration Data 


4. 


Connection data: identifying the established media sessions and 
session identifiers, established TCP connections and connection 
identifiers, and the TCP connection to crypto processor associations; 
dynamically established through the ongoing operation of the network 
media access controller; provided by and subsequently queriable by the 
interface and crypto processors; reportable to the administrative server. 


5. 


Statistical data: accumulated from the interface and crypto processors 
to reflect the internal status and performance of the network media 
access controller; reportable to the administrative server. 


6. 


Authentication data: table of user names, passwords, and IP 
combinations; used in support of user, client, and user/client 
authentication; user authentication verifies against the iSCSI login user 
name and password; client authentication verifies against a client IP 
and IP mask specification. 


7. 


Policy enforcement data: rule set defining access rights and privileges 
against user/client identifications and defined volumes; specification of 
permitted operations (read, read/write, format, mode select, verify, 
others) per user, client, or user/client for an identified volume. 



[0079] While the detailed function of the initiator and target interface 
processors 66, 70 is somewhat different, the processors 66, 70 utilize substantially 
the same interface processor 90 implementation, as shown in Figure 5. 
Preferably, a high-performance network processor 92 is used to implement the 
core functions of the interface processor 90. In the preferred embodiment of the 
present invention, the network processor 92 is an IBM PowerNP NP4GS3 Network 
Processor (Part Number IBM32NPR1 61 EPXCAE1 33), which is a programmable 
processor with hardware support for Layer 2 and 3 network packet processing, 
filtering, and routing operations at effective throughputs of up to 4 Gbps. The 
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network processor 92 supports a conventional bi-directional Layer 1 physical 
interface 94 to a network 96. 

[0080] The preferred network processor 92 includes a basic serial-data 
switch interface 98 that supports two uni-directional data-aligned synchronous 
data links compatible with multiple port connections to the switch fabric 68. 
Preferably, the switch interface 98 can be expanded, as needed, through trunking, 
to provide a greater number of speed-matched port connections to the switch 
fabric 68. 

[0081] A high-speed memory 100 is provided to satisfy the external 
memory and program storage requirements of the network processor 92. 
Included within this memory 100 is a data table 102 providing a dynamic data 
store for programmed and accumulated filtering and routing information. 
Preferably, for both the initiator and target interface processors 66, 70, the data 
table 102 is initially programmed with IP filter rules provided from the control 
processor 74, which are then used to define and constrain the allowable 
connections to and through the network media access controller 60. 
[0082] For the initiator interface processor 66, the data table 1 02 will store 
TCP connection information initially developed in response to received TCP 
connection requests from external iSCSI initiators. Where the connection is 
allowed under the applicable IP filtering rules, the media session and connection 
identifiers are recorded in the data table 102 along with the identification of an 
assigned crypto processor 72^, as selected by a load-balancer algorithm, to 
handle the TCP connection data packet processing. The media session, 
connection and crypto processor identifications are copied to the control processor 
74. 
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[0083] The target interface processor 70 will also store TCP connection 
information in the data table 102, though based on TCP connection requests 
initiated from the crypto processors 72 7 „ N . The TCP connection information is 
stored with an identification of the requesting crypto processors 72 1-N to permit 
return network data packets to be routed by the target interface processor 70 to 
the connection assigned crypto processor 72 1-N . 

[0084] A first embodiment 110 of a crypto processor 72^ is shown in 
Figure 6. The crypto processor 110 includes a network processor 112, which is 
also preferably an NP4GS3 Network Processor, and a switch fabric interface 1 14. 
A program memory 1 1 6 provides for the external memory and program 
requirements of the network processor 112. Data tables 1 1 8 store the access and 
media policy related information needed by a crypto processor 72^ N to process 
the network data packets provided through the TCP connections allocated to that 
particular crypto processor 72^. Preferably, the data tables 1 1 8 are populated 
as allocated TCP connections are opened. Where a TCP connection request 
opens a new media session, the control information describing the new media 
session is copied to the control processor 74, where the information is then held 
available for other crypto processors 72^, H . By default, preferably, each crypto 
processor 72 1 „ N queries the control processor 74 for a known media session upon 
receiving a TCP connection request and uses any returned information to 
abbreviate establishing the connection. 

[0085] In the preferred embodiments of the present invention, the crypto 

processor 110 performs media-level data encryption on select data packets 
received through a TCP connection. The encryption operation can be performed 
using a simple shared key encryption algorithm or a public key encryption 
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algorithm. In general, a numerically intensive computation, such as an encryption 
operation, is considered compute intensive for purposes of the present invention. 
[0086] The media-level data identified by operation of the network 
processor 112 is preferably passed through a high-speed data interchange 
interface to a dedicated encryption/decryption engine 1 20 for processing. For the 
crypto processor embodiment 110, the engine 120 is preferably a BCM5840 
Gigabit Security Processor, commercially available from Broadcom Corporation, 
Irvine, California. The BCM5840 processor implements a highly integrated 
symmetric cryptography engine providing hardware support for multiple 
encryption and decryption algorithms. Utilizing the BCM5840, a crypto processor 
1 1 0 is capable of a minimum sustained effective public key encryption/decryption 
and authentication rate of 2.4 Gbps. 

[0087] A second and preferred embodiment 1 30 of a crypto processor 72 }m 
N is shown in Figure 7. Where flexibility and high-integration are desired, a high- 
performance multi-processor system can be used in place of a dedicated, limited 
function network processor to perform level-2 through 7 processing of network 
data packets and implement storage data encryption and compression. For the 
preferred crypto processor 1 30, dual 1 .2 GHz Pentium®-lll series processors 1 32 
are connected through a core logic bridge 134 and a first PCI bridge 1 36 to an 
array of conventional Gigabit Ethernet network interface cores 138, and high- 
speed serial switch fabric interfaces 140. The core logic bridge 134 is preferably 
a high-performance bridge, such as the HE-SL North Bridge chip, commercially 
available from ServerWorks, Inc., Santa Clara, California, that supports dual PCI- 
64/66 buses. The PCI bridge 136 is preferable an Intel 21154 (64/66 MHz) 
South Bridge chip. Two network and switch interfaces 138, 140 connect through 
the switch fabric 60 to the initiator and target interface processors 66, 70. 
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Additional network and switch interfaces 138, 140 can be provided to support 
management and control access to the crypto processor 1 30. 
[0088] A second PCI bridge 142 provides a connection from the second 
bus interface of the core logic bridge 134 to an array of crypto/compression 
engines 144, such as the HiFn 7851 Security Processor, commercially available 
from HiFn, Inc., Los Gatos, California. The HiFn7851 implements a variety of 
encryption protocols and includes an embedded data compression engine. 
Alternately, a HiFn 7854 Security Processor can be used where public key 
encryption is desired, such as where the crypto processor is used to provide 
transport security as well, consistent with the VPN architecture described in the 
above identified co-pending applications. 

[0089] The microprocessors 132 preferably execute a high-performance 
network operating system, such as Linux™, from a program memory 146, which 
may be loaded from a disk drive hosted by the control processor 74. In 
operation, the microprocessors 132 selectively processes received network data 
packets to locate and pass media-level data for processing by the 
crypto/compression engines 144. Data tables 148, provided in the program 
memory 146, are used to store information in the same manner as data tables 
118. 

[0090] The programmed procedural operation of the microprocessors 1 32 
permit network as well as non-network specific operations, such as data 
compression, to be conveniently implemented. Simple data compression 
algorithms could be implemented directly by the micro processor core 132. 
Preferably, the integral compression engines of the crypto/compression engines 
144 are utilized to implement a high-performance lossless data compression 
algorithm with a throughput rate of up to 400 Mbits/sec per engine. Since, in 
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accordance with the preferred embodiments of the present invention, streaming, 
but not block media- level data is subject to being compressed by the crypto 
processor 1 30, the use of a programmed, procedural micro processor core 1 32 
simplifies handling different TCP connections with different desired treatments of 
media -level data. 

[0091 ] As illustrated in Figure 8, the preferred embodiments of the present 
invention particularly provide for compute intensive processing of media-level 
data contained within iSCSI protocol network data packets. To locate the media- 
level data, the encapsulated headers within network data packets routed to the 
network media access controller 60 are progressively examined to locate media- 
level data payloads. Whether the SCSI command applicable to particular media- 
level data is a read or write generally determines whether the corresponding 
media-level data payload is to be encrypted or decrypted. While the preferred 
embodiments are particularly directed to discovering media-level data within iSCSI 
protocol network data packets, the present invention is equally applicable to 
processing network data packets encapsulating or hosting any data transfer 
protocol, of which the iSCSI protocol a representative example. 
[0092] An iSCSI protocol network data packet 1 50, generically referred to 
as an iSCSI data packet, conventionally includes IP header field 152 that 
encapsulates a TCP packet 154. The IP packet 152 header field includes IP 
source and destination address and port number subfields. In accordance with 
the preferred embodiments of the present invention, the proxy operation and 
media level processing of network data packets by the network media access 
controller 60 involves rewriting the network data packets to selectively update the 
contained data. Such rewriting may, as optimal depending on implementation 
details, involve either copying the packet contents to a new data packet structure 
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or rewriting the contents of subfields in place within an existing data packet 
structure. Thus, in the simplest case, the IP subfields of a network data packet, as 
received by a crypto processor 72 1-N , are preferably rewritten with proxy-defined 
source and destination addresses and port numbers before being resent by the 
network media controller 60. 

[0093] The TCP packet 1 54 encapsulates a formal iSCSI data packet 1 56, 
which includes iSCSI header, payload, ECC, and trailer sections. The iSCSI 
header and payload data include subfields storing a media session identifier and, 
to support multiple TCP connection media sessions, a connection identifier for the 
iSCSI data packet 1 56. Other subfields occur as needed to provide iSCSI initiator 
and target names and the storage device LUN and LBA for the intended iSCSI 
target. These iSCSI subfields, and the address and port subfields of the IP packet 
header, may also be selectively rewritten based on the provided media policy 26. 
[0094] As generally shown in Figure 9, an exemplary media policy 1 70 
defines initiator and target maps that are implemented by the network media 
access controller 60. The initiator map is defined for the iSCSI target portal 
implemented by the network media access controller 60, which is identified by one 
or more combinations of IP addresses and TCP port numbers. The target map 
references iSCSI targets available through external iSCSI target portals, also 
identified by respective combinations of IP addresses and TCP ports, that are 
accessible by the network media access controller 60 through the target LAN 64. 
The initiator map is used to virtualize the available iSCSI targets and serve as a 
basis for associating access policy information with the iSCSI targets. 
[0095] For the exemplary media policy 1 70, the initiator map reflects a 
single iSCSI Portal A implemented by the network media access controller 60, 
while the target map references external iSCSI targets available through iSCSI 
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Portals B and C. Initiator map entries represent multiple iSCSI targets 1 72, 1 78, 
180, 182, each with a defined iSCSI target name (Portal A:Name A-C) that 
correspond to the available target map iSCSI named targets 172 1 , 178', 180', 
182'. Preferably, at least the initiator map is extended to distinguish LUN 
identified SCSI devices and, to represent separate partitions within a LUN as may 
be defined by a client filesystem, contiguous ranges of LBA values of a named 
iSCSI target. Preferably, entries qualified by LUN and LBA range take precedence 
over entries that only specify an iSCSI named target. 

[0096] Thus, initiator map entries 1 72, 1 74, 1 76 correspond to a common 
virtualized iSCSI target named Portal A: Name A, which maps through the target 
map entry 1 72' to an external iSCSI target named Portal B:Name D. The initiator 
map distinguished LBA ranges preferably correspond to partitions within the 
external iSCSI target Portal B:Name D. An iSCSI target Portal A:Name B:LUN 2 
maps through an entry 1 78' to Portal B:Name E:LUN 2 while iSCSI target Portal 
A: Name B:LUN4 separately maps through an entry 1 80' to Portal B:Name E:LUN 
4. Portal A:Name C:LUN 1 maps through entry 1 82' to Portal C:Name F:LUN 1 , 
demonstrating target portal redirection. In each instance, the initiator map entry 
supports the association of distinct keys with different distinguishable storage 
resources. 

[0097] Again referring to Figure 8, the payload portion of the iSCSI data 
packet 1 56 contains a SCSI command 1 58 as well as any referenced media-level 
data 1 60. Examination of the SCSI command 1 58 identifies whether media-level 
data 160 is included and the starting offset and length of the media-level data 
1 60. Specifically, where the SCSI command 1 58 indicates that the media-level 
data is media read or write data, as opposed to status or other data, the media- 
level data 160 is selectively processed by encryption, compression, or both. 
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[0098] The access policy 24 is referenced to obtain the encryption key and 

related crypto control parameters defining the type and implementation of the 
encryption algorithm applicable to the iSCSI target node referenced by the iSCSI 
data packet 156. As generally indicated in Figure 9, the access policy 24 
associates encryption keys and crypto parameters logically against the initiator 
map entries. Thus, the virtual iSCSI targets accessible through the media access 
controller 60, down to discrete LBA ranges identified through the media policy 26, 
can have unique associated encryption keys and sets of crypto parameters. The 
access policy 24 also preferably stores compression parameters, identifying any 
applicable compression algorithm and providing compression control values, 
against the initiator map entries. 

[0099] Media-level data processed through an encryption engine 1 20, 1 34 
is rewritten to the media-level data field 1 60. To reflect this transformation of the 
media-level data, the error correction code value held by the data error correction 
code field 162 is then recomputed and rewritten. This conforms the iSCSI packet 
158 to the conventional requirements of the iSCSI protocol. 
[0 1 00] The comprehensive operation of a network media access controller 

60 is generally shown in the process flow 1 90 of Figure 1 0. When a network data 
packet is received from the initiator or target LAN 62, 64, the initiator and target 
interface processors 70 filter 1 92 the data packet based on the transport policy 
22. The filter 1 92 preferably excludes non-iSCSI protocol network data packets, 
except those provided to establish a TCP connection for an iSCSI session and 
those exchanged with an authorized administrative server 28 to manage and 
configure the network media access controller 60. The filter 1 92 also preferably 
excludes iSCSI protocol network data packets directed to or received from 
unauthorized iSCSI targets. 
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[0101] For iSCSI data packets received through an existing TCP connection, 
the interface processor 66, 70 internally routes the network data packet to a 
crypto processor 72 1-N assigned to handle the corresponding TCP connection, 
which is determined from the local data table 102 or by query of the control 
processor 74. 

[0102] For new TCP connections, a crypto processor 72 } _ H is assigned, 
selected based on a load-balancing algorithm, to handle the TCP connection until 
closed. Preferably, load-balancing is performed by a least-connections-assigned 
algorithm. The initiator interface processor 66 determines from the local data 
table 102 the crypto processor 72 %N with the least number of open TCP 
connections assigned and adds the new TCP connection to that crypto processor 
72 1-N . The new TCP connection assignment is reported to the control processor 
74. 

[0103] Alternately, the load-balancing algorithm can operate to take into 
account the effective activity of the different TCP connections. By query of the 
statistical data accumulated by the control processor 74 for the different open TCP 
connections, the load-balancing algorithm can select an available crypto 
processor 72^ based on a weighted combination of least-connection- 
assignments and loading. Since I/O data transfer loads are often highly 
aperiodic, such a load weighting may be inconsequential as a practical matter. 
Broadly distributing TCP connections associated with a single media session over 
the crypto processors 72 }mH , however, may minimize the occurrence of excessive 
load on any one crypto processor 72-,. N during an activity peak within the media 
session. 

[0104] The network data packets are forwarded to the assigned crypto 
processor 72 %N , either to complete the setup of an iSCSI session or, subsequently, 
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to process iSCSI data packets. In the specific instance of an iSCSI data packet 
transferred within an existing iSCSI session, the assigned crypto processor 72 }M 
first parses the iSCSI header subfields 194. In the preferred proxy-based 
embodiment, the IP header and iSCSI subfields are then rewritten to reference the 
proxy targets 196 based on the media policy 26. The initiator to target mapping 
is then examined 198 and the iSCSI initiator and target name mapping 200 is 
rewritten based on the media policy 26. These subfields, however, are not 
rewritten where the network media access controller 60 operates as a network 
gateway for iSCSI protocol transactions. 

[0105] The SCSI command 158 contained within the iSCSI data packet is 
then parsed to identify the SCSI command function. An encryption key, the 
volume compression status, and related parameters are retrieved 204 from the 
access policy 24, depending on whether media-level data is present in the iSCSI 
data packet as determined from function specified by the embedded SCSI 
command. 

[0106] Since the SCSI I/O transport protocol includes command and 
response phases, a SCSI state machine is preferably implemented by the crypto 
processors 72 UN to track the phase transitions within each connection handled by 
a crypto processor 72^. Thus, the media-level processing 206 of write data is 
performed in the command phase of a SCSI write command, while read data 
processing 206 is performed in the response phase following from a SCSI read 
command. Whenever media-level data is processed 206, the corresponding 
fields of the iSCSI data packet are updated 208, followed by an update of the 
SCSI state machine 210 and any session data 212, including session data 
sequence numbers. The processed iSCSI data packet is then passed by the crypto 
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processor 72 1-N to the initiator or target interface processor 66, 70 for transfer 
onto the appropriate initiator or target LAN 62, 64. 

[0 1 07] Where an SCSI command or response does not include media-level 
data for processing 206, or where the processing 206 of the media-level data 
encounters an error condition, the SCSI state machine 21 0 and session data 212 
are updated and, as appropriate, an iSCSI data packet is passed on to the 
initiator or target interface processor 66, 70. 

[01 08] The preferred operation 220 of the present invention in performing 
encryption and, optionally, compression processing of media-level data is shown 
in Figure 11. Media-level data transfers are specified by SCSI commands as a 
transfer of a series of one or more data blocks. For random read/write capable 
block storage devices, such as hard disk drives, the initiator and target block 
correspondence must be maintained by the network media access controller 60. 
Therefore, the preferred embodiments of the present invention separately encrypt 
each data block of media-level data directed to a random read/write block 
storage device. 

[0109] Media-level data transfers directed to sequential data storage 
devices, such as tape drives, are also specified as transfers of one or more data 
blocks. Since sequential media-level data is written and read as unitary data 
streams, initiator to target block correspondence need not be maintained. The 
preferred embodiments of the present invention therefore provide for the 
encryption and optional compression of media-level data written to sequential 
data storage devices. 

[0110] The size of each data block referenced by a SCSI command is 
determined by the underlying device. For block storage devices, a typical block 
size is 512 bytes and at least logically corresponds to a disk data sector. Data 
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blocks written to block storage devices must be block aligned to the underlying 
device- While the data block size is fixed for a particular block storage device, 
different block storage devices can and often do have different block sizes. 
[011 1] Sequential data storage devices have defined physical data block 
sizes and operate in either fixed or variable block size modes. In fixed block size 
mode, each write data block is written as one or more contiguous physical data 
blocks. In variable block size mode, the physical data block size represents the 
maximum write data block size that can be written to the device in a single write 
operation. There is, however, no underlying physical media block alignment 
requirement, which allows data blocks to be written beginning at any offset subject 
to the constraint that individual block writes are equal or less than the physical 
block size supported by a particular data storage device. 
[0112] Media-level data, received 222 in connection with a SCSI write data 
command is considered in connection with the access policy 24 for the named 
iSCSI target. The access policy 24 provides the necessary encryption key, 
compression state, and applicable encryption and compression parameters for the 
named iSCSI target. The media-level data may be first compressed 224 where 
the named iSCSI target is a sequential data storage device. 
[0113] The media-level data is then encrypted 226 preferably using a 
strong block encryption algorithm. For block storage devices, the encryption 
algorithm block size used is preferably a word-aligned block size that most closely 
approaches the block size of the media-level data. For purposes of the present 
invention, word-alignment occurs on eight byte boundaries. Consequently, up to 
one word of the media-level data in each media-level data block is either left 
unencrypted or preferably encrypted 228 using a conventional non-block oriented 
encryption algorithm, such as XOR and hashing, as may be specified by the 
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access policy 24. Each media-level data block provided in connection with the 
SCSI command is successively encrypted by first block encryption 226 and, to the 
extent that any extended data remains, non-block encrypted 228. While the 
extended media-level data, representing the differential between the encryption 
and media block sizes, is generally subject to a relatively weaker form of 
encryption, less than a word of each media-level data block is exposed by the 
weaker encryption and then only at intervals at least equal to the media block 
size. 

[0114] For sequential data storage devices, a word-aligned encryption 
block size is chosen that is preferably evenly divisible into the total length, subject 
to compression, of the media-level data provided with the SCSI command. Larger 
block sizes are potentially preferred to optimize the performance of the encryption 
algorithm. Smaller sizes are preferred to minimize the amount of extended data 
remaining between a multiple of the encryption algorithm block size and the 
actual length of the compressed media-level data. Rather than use only a single 
fixed block size, the access policy 24 can possibly be used to specify a sequence 
or schedule of encryption block sizes that, in combination, may further minimize 
the size of any terminal fractional block of media-level data. 
[01 15] Preferably, media-level data directed to a sequential data storage 

device is successively block encrypted 226 based on a block encryption size that 
is less than the device specific block size. Any remaining media-level data, which 
is by definition less than the block encryption size used in encrypting the bulk of 
the media-level data, is then encrypted 228 using a non-block oriented encryption 
algorithm. 

[0116] Media-level data, received 222 in connection with a SCSI read data 
command is decrypted 230, 232, with the decryption procedure depending on 
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whether the named iSCSI target is a block or sequential data storage device. 
Where received from a sequential data storage device, the decrypted media-level 
data is decompressed 234 depending on the compression state defined for the 
named iSCSI target in the access policy 24. The processing of media-level data 
completes with the rewriting 236 the iSCSI data packet with the processed media- 
level data. 

[01 1 7] Figures 1 2 through 20 detail the preferred operational flow of the 
network media access controller 60 for iSCSI protocol network data transfers in 
accordance with the present invention. The flow 240 of Figure 12 details the 
establishment of a new TCP connection for a new or existing iSCSI media session. 
The TCP connection request from an external iSCSI initiator is initially filtered 
through the basic IP address and TCP port rules of the transport policy and 
passed, subject to the load-balancer algorithm, to an available crypto processor 
72 1 _ N . A TCP accept packet is returned to the iSCSI initiator. An iSCSI initiator 
login request is then received, including the user name and password associated 
by the client computer operating system with the iSCSI login request. Provided the 
iSCSI initiator login request is authorized under the transport policy rules, the 
crypto processor 72 1-N selects and initiates a TCP connection with a 
corresponding, external, named iSCSI target and issues an independent iSCSI 
initiator login request. On acceptance of the iSCSI login by the external named 
iSCSI target, the assigned crypto processor 72 VN completes the iSCSI login with 
the external iSCSI initiator. A series of iSCSI text commands and responses are 
typically then exchanged through the assigned crypto processor 72 1-N < The 
assigned crypto processor 72 UN receives each request and response, copies out 
any relevant parameter data passed between the external iSCSI initiator and 
target, updates the connection SCSI state machine, and, subject to proxy rewriting, 
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passes on the request or response. The parameter data collected is updated to 
the control processor 74. 

[0118] Where the TCP connection is recognized as part of an iSCSI media 
session established through a prior TCP connection, the assigned crypto processor 
72, . N can use the information collected during the initial iSCSI login of the media 
session to complete the current iSCSI login transaction. Recognition of the media 
session is performed by issuing a control message query to the control processor 
74 by the assigned crypto processor 72 } _ u . If the current login is the initial login 
for an iSCSI media session, the information progressively collected from the text 
command and response exchanges is passed to the control processor 74 for 
storage and subsequent reference. 

[0119] Typically following completion of an initial media session iSCSI 
login, the external iSCSI initiator will investigate the configuration of the iSCSI 
target. As shown in Figure 13, SCSI inquiry, mode sense, read capability and 
read block limits requests can be issued by the external iSCSI initiator. The 
assigned crypto processor 72 UN receives each request, updates the connection 
SCSI state machine, and, subject to proxy rewriting, passes the request to the 
external named iSCSI target, provided the request is authorized under the 
transport policy rules. 

[0120] The external named iSCSI target responds with a SCSI inquiry, mode 

sense, read capability, or read block limit response to the assigned crypto 
processor 72^. The connection SCSI state machine is updated with each 
response received. The various response returned information, such as on-line 
status, data block size, storage capacity, device type, and hardware compression 
capability of the external named iSCSI target, are also recorded by the assigned 
crypto processor 72 %N and passed to the control processor 74 for storage and 
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subsequent reference. Finally, each response is passed, subject to proxy rewriting, 
to the external iSCSI initiator. 

[0121] Figures 14 and 15 detail two different possible SCSI read command 

process flows. In the flow 244 of Figure 14, a SCSI read command is received 
from the external iSCSI initiator and checked against the transport policy rules. 
The connection state machine and data tracking the current media session are 
updated. The SCSI read command, subject to proxy rewriting, is then issued to 
the external named iSCSI target. 

[01 22] A single SCSI read command response returns the media-level data 
referenced by the SCSI read command to the assigned crypto processor 72 1-N . 
The connection state machine is updated and the media-level data is decrypted 
and, as appropriate, decompressed. The processed media-level data is then 
rewritten into the read response network data packet, which is further rewritten for 
reverse proxy operation. The SCSI read response network data packet is then 
passed to the external iSCSI initiator. 

[01 23] The flow 246 of Figure 1 5 is similar to the flow 244 except that the 
external named iSCSI target responds to the SCSI read command with an 
alternative SCSI data-in response. The SCSI data-in response is handled 
substantially the same as the SCSI read command response. The significant 
differences are that multiple SCSI data-in response can be sourced from the 
external named iSCSI target, ultimately terminating with a separate SCSI 
command status response. Preferably, the connection SCSI state machine 
recognizes and tracks the difference in SCSI flow responses. 
[0124] Figures 16 and 17 detail SCSI write data processes flows. In the 
process flow 248 of Figure 1 6, a SCSI write command transfers media-level data 
from the external SCSI initiator to the assigned crypto processor 72 1-N . If the write 
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is authorized under the transport policy rules, the connection state machine is 
updated and the media-level data is compressed, as appropriate, and encrypted. 
The media session data is updated and the rewritten iSCSI data packet is sent to 
the external named iSCSI target. When a corresponding SCSI command status 
response is returned, the assigned crypto processor 72 UN again updates the 
connection state machine and returns, subject to proxy rewriting, the SCSI 
command status response to the external iSCSI initiator, 
[01 25] The flow 250 of Figure 1 7 differs in that the external iSCSI initiator 
may issue multiple SCSI media data-out commands to transfer the write media- 
level data. The connection SCSI state machine preferably recognizes the media 
data-out command, updates the state machine state, and directs the appropriate 
compression and encryption of the media-level data provided. Each SCSI media 
data-out command, rewritten with the processed media-level data and proxy 
information, is then sent to the external named iSCSI target. The last SCSI media 
data-out command contains an end of data marker, which prompts the return of 
a SCSI command status response. Upon receipt, the assigned crypto processor 
72 1-N again updates the connection state machine and returns, subject to proxy 
rewriting, the SCSI command status response to the external iSCSI initiator. 
[0126] As indicated by the flow 252 of Figure! 8, other SCSI commands 
and command status responses, passed within iSCSI data packets, are essentially 
passed through the connection assigned crypto processor 72 1-N/ subject to 
authorization under the transport policy rules and, if transport is permitted, proxy 
rewriting. The connection state machine is updated with each SCSI command 
passed in order to remain synchronized to the SCSI state of the external SCSI 
initiator and target. 
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[01 27] Figures 1 9 and 20 show the preferred process flows for closing an 
iSCSI connection 254 and closing a TCP connection 256. The closing of an iSCSI 
connection 254 is performed by the external iSCSI initiator for each TCP 
connection within a media session in order to close the media session. An iSCSI 
data packet containing an iSCSI logout command is issued on each TCP 
connection to the network media access controller 60. Each connection assigned 
crypto processor 72^ N effectively resets the connection SCSI state machine and 
updates the media session data. The iSCSI data packet, subject to proxy rewriting, 
is then sent to the external named iSCSI target. 

[01 28] When the media session for a particular TCP connection has been 
closed, the underlying TCP connection can be closed by the external iSCSI initiator 
by issuing a TCP close data packet. The initiator interface processor 66 responds 
to the TCP close data packet by returning an acknowledgment data packet, 
updating the connection allocation table maintained by the load-balancer 
algorithm, and causing the target interface processor 70 to close the 
corresponding TCP connection with the external named iSCSI target. 
[0129] Thus, a network media access controller and methods for managing 
and configuring secure access to external network-attached storage devices has 
been described. While the present invention has been described particularly with 
reference to the iSCSI and SCSI protocols, the present invention is equally 
applicable to providing secure management and configuration for storage devices 
using any network protocol hosted I/O data transfer protocols. 
[01 30] In view of the above description of the preferred embodiments of the 
present invention, many modifications and variations of the disclosed 
embodiments will be readily appreciated by those of skill in the art. It is therefore 
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to be understood that, within the scope of the appended claims, the invention may 
be practiced otherwise than as specifically described above. 



Attorney Docket No.: AESN3005 

gbr/aesn/3005.000.application.wpd 



11/30/2001 



